From The Verge: A cyberattack was behind an incident last year that disabled over 600,000 internet routers across several Midwest states between October 25th and 27th, according to new research published by Lumen Technologies’ threat research arm, Black Lotus Labs. The incident wasn’t disclosed at the time, despite hundreds of thousands of routers being rendered inoperable.
The investigation also didn’t specify which company was targeted, but Reuters says it has identified the target as Windstream, an Arkansas-based ISP, based on cross-referencing internet outages reported during the same period. Windstream, which has a service area covering many rural or underserved communities, declined The Verge’s request for comment.
Black Lotus Labs investigated based on repeated complaints across social media and outage detectors about specific routers, particularly the ActionTec T3200 and ActionTec T3260. Users reported their issues were resolved only by their provider replacing the affected devices.
View: Full Article